[Secure-testing-commits] r18021 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jan 4 15:29:45 UTC 2012
Author: jmm
Date: 2012-01-04 15:29:45 +0000 (Wed, 04 Jan 2012)
New Revision: 18021
Modified:
data/CVE/list
Log:
new wordpress issue
tinyproxy unimportant
older php issue fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-01-04 09:14:17 UTC (rev 18020)
+++ data/CVE/list 2012-01-04 15:29:45 UTC (rev 18021)
@@ -1,5 +1,7 @@
CVE-2012-XXXX [inkscape files unexpectedly read from /tmp]
- inkscape <unfixed> (low; bug #654341)
+CVE-2012-0287
+ - wordpress 3.3.1+dfsg-1
CVE-2012-0286
RESERVED
CVE-2012-0285
@@ -9569,7 +9571,8 @@
CVE-2011-1844 (Memory leak in Microsoft Silverlight 4 before 4.0.60310.0 allows ...)
NOT-FOR-US: Silverlight
CVE-2011-1843 (Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow ...)
- - tinyproxy 1.8.2-2 (bug #627503)
+ - tinyproxy 1.8.2-2 (unimportant; bug #627503)
+ NOTE: Only exploitable through config files, which are under admin control
CVE-2011-1842 (dbus_backend/lsd.py in the D-Bus backend in language-selector before ...)
NOT-FOR-US: Ubuntu-specific language-selector package
CVE-2011-1841 (Cross-site scripting (XSS) vulnerability in the link_to helper in ...)
@@ -22770,7 +22773,7 @@
CVE-2010-1861 (The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 ...)
- php5 <unfixed> (unimportant)
CVE-2010-1860 (The html_entity_decode function in PHP 5.2 through 5.2.13 and 5.3 ...)
- - php5 <unfixed> (unimportant)
+ - php5 5.3.3-1 (unimportant)
CVE-2010-1859 (SQL injection vulnerability in newpost.php in DeluxeBB 1.3 and ...)
NOT-FOR-US: DeluxeBB
CVE-2010-1858 (Directory traversal vulnerability in the SMEStorage (com_smestorage) ...)
More information about the Secure-testing-commits
mailing list